{"vulnerability": "CVE-2025-3208", "sightings": [{"uuid": "f24d238b-406a-494a-abc8-85ab4e19bc81", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-32080", "type": "seen", "source": "https://t.me/cvedetector/22766", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-32080 - Wikimedia Foundation Mediawiki Mobile Frontend Extension Information Exposure Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2025-32080 \nPublished : April 11, 2025, 5:15 p.m. | 40\u00a0minutes ago \nDescription : Exposure of Sensitive Information to an Unauthorized Actor vulnerability in The Wikimedia Foundation Mediawiki - Mobile Frontend Extension allows Shared Resource Manipulation.This issue affects Mediawiki - Mobile Frontend Extension: from 1.39 through 1.43. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"11 Apr 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-04-11T20:38:12.000000Z"}, {"uuid": "4e866ab1-d72d-4ea2-89cb-e0f6af22af56", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-32089", "type": "seen", "source": "https://infosec.place/objects/b72e2723-5d67-4630-af08-ba3f787e4031", "content": "", "creation_timestamp": "2025-11-17T14:30:22.924354Z"}, {"uuid": "a5838f06-e2e6-4db2-ba8c-5159966f6216", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-32080", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/11457", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-32080\n\ud83d\udd25 CVSS Score: 6.9 (cvssV4_0, Vector: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:L/SI:L/SA:L)\n\ud83d\udd39 Description: Exposure of Sensitive Information to an Unauthorized Actor vulnerability in The Wikimedia Foundation Mediawiki - Mobile Frontend Extension allows Shared Resource Manipulation.This issue affects Mediawiki - Mobile Frontend Extension: from 1.39 through 1.43.\n\ud83d\udccf Published: 2025-04-11T16:24:00.100Z\n\ud83d\udccf Modified: 2025-04-11T16:36:40.447Z\n\ud83d\udd17 References:\n1. https://phabricator.wikimedia.org/T366402\n2. https://gerrit.wikimedia.org/r/c/mediawiki/extensions/MobileFrontend/+/1123392\n3. https://gerrit.wikimedia.org/r/q/Ia5c3be79db37240acbaa630834e430ec3147e61c", "creation_timestamp": "2025-04-11T16:51:04.000000Z"}, {"uuid": "2fa712cb-d7cf-4dee-baec-24830b5e3fc8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-32080", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lmkrorl2ae2z", "content": "", "creation_timestamp": "2025-04-11T19:43:14.936527Z"}, {"uuid": "16bb77f8-aaa9-4b2f-b916-8c100c12e360", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-3208", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/10388", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-3208\n\ud83d\udd25 CVSS Score: 5.3 (cvssV4_0, Vector: CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N)\n\ud83d\udd39 Description: A vulnerability was found in code-projects Patient Record Management System 1.0. It has been classified as critical. Affected is an unknown function of the file /xray_print.php. The manipulation of the argument itr_no leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used.\n\ud83d\udccf Published: 2025-04-04T04:31:04.932Z\n\ud83d\udccf Modified: 2025-04-04T04:31:04.932Z\n\ud83d\udd17 References:\n1. https://vuldb.com/?id.303162\n2. https://vuldb.com/?ctiid.303162\n3. https://vuldb.com/?submit.545960\n4. https://github.com/ZOKEYE/CVE/blob/main/cve2.md\n5. https://code-projects.org/", "creation_timestamp": "2025-04-04T04:35:17.000000Z"}, {"uuid": "7054ef31-eac7-460a-9f50-72de2c8a28ea", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-3208", "type": "seen", "source": "https://t.me/cvedetector/22074", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-3208 - Apache Code-projects Patient Record Management System SQL Injection\", \n  \"Content\": \"CVE ID : CVE-2025-3208 \nPublished : April 4, 2025, 5:15 a.m. | 31\u00a0minutes ago \nDescription : A vulnerability was found in code-projects Patient Record Management System 1.0. It has been classified as critical. Affected is an unknown function of the file /xray_print.php. The manipulation of the argument itr_no leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. \nSeverity: 6.3 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"04 Apr 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-04-04T07:58:40.000000Z"}]}